Hi Kurt, any new on integrating this. I thought dropping the one line we agreed could be done on you applying it. Did you wait for me to create a line for the leap second thing or are you waiting on me for something else related to it I didn't realize?
Christian Ehrhardt Software Engineer, Ubuntu Server Canonical Ltd On Fri, May 6, 2016 at 5:20 PM, Christian Ehrhardt < christian.ehrha...@canonical.com> wrote: > > On Fri, May 6, 2016 at 10:16 AM, Kurt Roeckx <k...@roeckx.be> wrote: > >> On Fri, May 06, 2016 at 10:09:21AM -0500, Christian Ehrhardt wrote: >> >> I think this line shouldn't be ignored: >> ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: receive: Unexpected >> origin timestamp from ([0-9.]{7,15}|[0-9a-fA-F:.]{4,39}) >> >> But it does seem to show up more than it should. >> >> I added it as it showed up in the most basic things I did. > But you are right, we shouldn't ignore this one. > I found that it is also recommended to monitor for that line (high > frequent) for https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7705 > > So please feel free to just drop this line from the file. > I wonder thou why it appears in basic execution so often (well different > bug then) >